682 matches found
SUSE CVE-2024-23445
It was identified that if a cross-cluster API key https://www.elastic.co/guide/en/elasticsearch/reference/8.14/security-api-create-cross-cluster-api-key.htmlsecurity-api-create-cross-cluster-api-key-request-body restricts search for a given index using the query or the fieldsecurity parameter, an...
Important: Red Hat Security Advisory: RHSA: Submariner 0.17.5 - bug and security fixes
Submariner 0.17 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.10 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVS...
SUSE CVE-2024-56513
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered with the karmadactl register command have excessive privileges to access control plane resources...
CVE-2024-56514 Karmada Tar Slips in CRDs archive extraction
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, both in karmadactl and karmada-operator, it is possible to supply a filesystem path, or an HTTPs URL to retrieve the custom resourc...
GHSA-MG7W-C9X2-XH7R Karmada PULL Mode Cluster Privilege Escalation
Impact What kind of vulnerability is it? Who is impacted? The PULL mode clusters registered with the karmadactl register command have excessive privileges to access control plane resources. By abusing these permissions, an attacker able to authenticate as the karmada-agent to a karmada cluster...
CVE-2024-56513
Karmada PULL mode clusters were granted excessive access to control plane resources before v1.12.0. An attacker who can authenticate as the karmada-agent could obtain administrative privileges over the entire federation, including all member clusters. Since v1.12.0, karmadactl register tightens p...
CVE-2024-56513 Karmada PULL Mode Cluster Privilege Escalation
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered with the karmadactl register command have excessive privileges to access control plane resources...
CVE-2024-56513 Karmada PULL Mode Cluster Privilege Escalation
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered with the karmadactl register command have excessive privileges to access control plane resources...
CVE-2024-56513 Karmada PULL Mode Cluster Privilege Escalation
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered with the karmadactl register command have excessive privileges to access control plane resources...
Karmada 路径遍历漏洞
Karmada is a Kubernete management system open-sourced by Karmada. A path traversal vulnerability exists in versions of Karmada prior to 1.12.0, which stems from allowing users to run cloud-native applications across multiple Kubernetes clusters and clouds...
Karmada 安全漏洞
Karmada is a Kubernete management system open-sourced by Karmada. A security vulnerability exists in Karmada versions prior to 1.12.0 that stems from allowing users to run cloud-native applications across multiple Kubernetes clusters and clouds...
AZL-68312 CVE-2024-53234 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: erofs: handle NONHEAD !delta1 lclusters gracefully syzbot reported a WARNING in iomapiterdone: iomapfiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80 ioctlfiemap fs/ioctl.c:220 inline Generally, NONHEAD lclusters won't have delta1==0, exce...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a problem with the handling of NONHEAD !delta1 lclusters in the erofs module...
SUSE CVE-2023-3676
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes...
Important: Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.
Red Hat Developer Hub 1.4 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single pa...
CVE-2024-54674
app/View/GalaxyClusters/clusterexportmispgalaxy.ctp in MISP through 2.5.2 has stored XSS when exporting custom clusters into the misp-galaxy format...
CVE-2024-54674
app/View/GalaxyClusters/clusterexportmispgalaxy.ctp in MISP through 2.5.2 has stored XSS when exporting custom clusters into the misp-galaxy format...
Important: Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.2.5 bugfix release
Red Hat Developer Hub 1.2.5 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
CVE-2022-45157 Exposure of vSphere's CPI and CSI credentials in Rancher
A vulnerability has been identified in the way that Rancher stores vSphere's CPI Cloud Provider Interface and CSI Container Storage Interface credentials used to deploy clusters through the vSphere cloud provider. This issue leads to the vSphere CPI and CSI passwords being stored in a plaintext...
CVE-2022-45157 Exposure of vSphere's CPI and CSI credentials in Rancher
A vulnerability has been identified in the way that Rancher stores vSphere's CPI Cloud Provider Interface and CSI Container Storage Interface credentials used to deploy clusters through the vSphere cloud provider. This issue leads to the vSphere CPI and CSI passwords being stored in a plaintext...